Apple's Encryption Won't Stop the NSA

#Privacy

Mon, Oct 6th, 2014 10:00 by capnasty NEWS

On the Silicon Exposed blog, Andrew Zonenberg looks at Apple's announcement that it won't be able to decrypt its phones for law enforcement agencies. Zonenberg argues that "disk encryption isn't as much of a major game-changer as people seem to think."

First off, the changes in iOS 8 are encrypting data on disk. Voice calls, SMS, and Internet packets still cross the carrier's network in cleartext. These companies are legally required (by CALEA in the United States, and similar laws in other countries) to provide a means for law enforcement or intelligence to access this data.

In addition, if Eve can get within radio range of Alice or Bob, she can record the conversation off the air. Although the radio links are normally encrypted, many of these cryptosystems are weak and can be defeated in a reasonable amount of time by cryptanalysis. Numerous methods are available for executing man-in-the-middle attacks between handsets and cell towers, which can further enhance Eve's interception capabilities.

  1272

 

You may also be interested in:

How ProPublica Figured Out the Unnamed Telecommunication Company Helping the NSA was AT&T
"Anything that you’re doing on your phone, Facebook is watching."
"[Parents could face] a year in prison for publishing intimate photos of their children on social media."
"In effect what we're doing is replicating the digital experience in physical space."
It Might Be Time to Uninstall Google Chrome